Full_Name: Joke de Buhr Version: 2.4.35 OS: fedora 18 64bit URL: ftp://ftp.openldap.org/incoming/ Submission from: (NULL) (37.5.143.82) While using the password policy overlay changing the parameter olcPasswordHash causes an error upon password update. When changing the password via ldappasswd after changing the parameter olcPasswordHash the error Constraint violation (19) Password policy only allows one password value if returned to the client. Changing the password isn't possible until slapd is restarted. After restarting slapd changing the password works again. Please refer to my postings [1] on the mailing list. [1] http://www.openldap.org/lists/openldap-technical/201306/msg00122.html
joke@seiken.de wrote: > Full_Name: Joke de Buhr > Version: 2.4.35 > OS: fedora 18 64bit > URL: ftp://ftp.openldap.org/incoming/ > Submission from: (NULL) (37.5.143.82) > > > While using the password policy overlay changing the parameter olcPasswordHash > causes an error upon password update. Unable to reproduce the issue here. Please post your complete slapd configuration, sample LDIF, and the exact commandlines you issued to demonstrate the problem. > > When changing the password via ldappasswd after changing the parameter > olcPasswordHash the error > > Constraint violation (19) Password policy only allows one password value > > if returned to the client. Changing the password isn't possible until slapd is > restarted. After restarting slapd changing the password works again. > > > > Please refer to my postings [1] on the mailing list. > > [1] http://www.openldap.org/lists/openldap-technical/201306/msg00122.html > > -- -- Howard Chu CTO, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/
changed state Open to Feedback
moved from Incoming to Software Bugs
Hello, today i faced the same problem but because of multiple *olcPasswordHash *entries. This caused the *userPassword *attribute was created multiple times for a single password change request: once for each hash algorithm declared in *olcPasswordHash* By the way, restarts didn't help. Regards, Gena